Access the production server using the appropriate account. Check the following. If you find anything that needs follow up or investigation, create appropriate Issues in this repository.
[x] Check /var/log/unattended-upgrades/unattended-upgrades.log to verify that security updates installed without problems.
[x] Run grep 'Accepted password' /var/log/auth.log; all search hits should be for one of two expected accounts.
[x] Check /var/log/syslog for anything unusual. (Most entries will be hourly cron jobs.)
[X] Run ~/logdays.sh 2 to identify log files updated within the last 48 hours. (Replace 2 with 3 on Mondays.) Browse some of these; especially unusual ones; look for anything out of the ordinary.
ricard-inho
commented
5 years ago
Access the production server using the appropriate account. Check the following. If you find anything that needs follow up or investigation, create appropriate Issues in this repository.
/var/log/unattended-upgrades/unattended-upgrades.logto verify that security updates installed without problems.grep 'Accepted password' /var/log/auth.log; all search hits should be for one of two expected accounts./var/log/syslogfor anything unusual. (Most entries will be hourlycronjobs.)~/logdays.sh 2to identify log files updated within the last 48 hours. (Replace 2 with 3 on Mondays.) Browse some of these; especially unusual ones; look for anything out of the ordinary.